10 matches found
Linux Distros Unpatched Vulnerability : CVE-2007-0654
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer underflow in X MultiMedia System xmms 1.2.10 allows user-assisted remote attackers to execute arbitrary code via crafted header information in a skin...
RHEL 4 : xmms (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 4 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - XMMS multiple issues CVE-2007-0654 CVE-2007-0653, CVE-2007-0654 Note that Nessus has not tested for these...
SLES9: Security update for XMMS
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: xmms xmms-devel For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5015928 within...
SuSE 10 Security Update : XMMS (ZYPP Patch Number 3075)
Two integer overflows when processing BMP skin images potentially allows attackers to execute arbitrary code via specially crafted files. CVE-2007-0653 / CVE-2007-0654 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...
Ubuntu 5.10 / 6.06 LTS / 6.10 : xmms vulnerabilities (USN-445-1)
Sven Krewitt of Secunia Research discovered that XMMS did not correctly handle BMP images when loading GUI skins. If a user were tricked into loading a specially crafted skin, a remote attacker could execute arbitrary code with user privileges. Note that Tenable Network Security has extracted the...
openSUSE 10 Security Update : xmms (xmms-3073)
Two integer overflows when processing BMP skin images potentially allows attackers to execute arbitrary code via specially crafted files CVE-2007-0653,CVE-2007-0654. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...
Debian DSA-1277-1 : XMMS - several vulnerabilities
Multiple errors have been found in the skin handling routines in xmms, the X Multimedia System. These vulnerabilities could allow an attacker to run arbitrary code as the user running xmms by inducing the victim to load specially crafted interface skin files. %NASLMINLEVEL 70300 C Tenable Network...
[SECURITY] [DSA 1277-1] New XMMS packages fix arbitrary code execution
------------------------------------------------------------------------ Debian Security Advisory DSA-1277-1 [email protected] http://www.debian.org/security/ Noah Meyerhans April 04, 2007 - ------------------------------------------------------------------------ Package : xmms Vulnerability :...
Secunia Research: XMMS Integer Overflow and Underflow Vulnerabilities
====================================================================== Secunia Research 21/03/2007 - XMMS Integer Overflow and Underflow Vulnerabilities - ===================================================================== Table of Contents Affected...
CVE-2007-0654
XMMS 1.2.10 contains an integer underflow in the BMP skin header processing, leading to a stack-based buffer overflow that enables remote code execution. Affected files: the skin bitmap handling code within XMMS; impact includes arbitrary code execution on the affected system. Public advisories a...